3.12 Vulnerabilities

hkennedy · Post by **hkennedy** » Wed Jul 28, 2010 5:43 pm

.312 Vulnerabilities
Does anyone know if these issues still exist?
1.A vulnerability has been identified in Audacity, which could be exploited by attackers to cause a denial of service or take complete control of an affected system. This issue is caused by a buffer overflow error when importing a GRO file containing overly long data, which could be exploited by attackers to crash an affected application or execute arbitrary code by tricking a user into importing a malicious ".GRO" file.

2. A vulnerability has been identified in Audacity, which could be exploited by local attackers to bypass security restrictions and cause a denial of service. This issue is caused by an error when creating and handling temporary files, which could allow malicious users to conduct symlink attacks and delete arbitrary files and directories with the privileges of the user invoking the vulnerable script, creating a denial of service condition

Post by **Gale Andrews** » Wed Jul 28, 2010 8:23 pm

hkennedy wrote:.312 Vulnerabilities

The current Audacity Beta is 1.3.12.

hkennedy wrote: 1.A vulnerability has been identified in Audacity, which could be exploited by attackers to cause a denial of service or take complete control of an affected system. This issue is caused by a buffer overflow error when importing a GRO file containing overly long data, which could be exploited by attackers to crash an affected application or execute arbitrary code by tricking a user into importing a malicious ".GRO" file.

If you are referring to http://www.vupen.com/english/advisories ... references that is claimed to apply to 1.2.6. The 1.2.6 version is no longer being developed. Are you able to replicate this in 1.3.12?

hkennedy wrote:2. A vulnerability has been identified in Audacity, which could be exploited by local attackers to bypass security restrictions and cause a denial of service. This issue is caused by an error when creating and handling temporary files, which could allow malicious users to conduct symlink attacks and delete arbitrary files and directories with the privileges of the user invoking the vulnerable script, creating a denial of service condition

If you are referring to http://www.vupen.com/english/advisories/2007/4025 and this is the same issue as CVE-2007-6061, then this was fixed in Audacity 1.3.5.

Gale

whomper · Post by **whomper** » Wed Jul 28, 2010 9:06 pm

how can this happen if you are not online?
who runs internet at the same time as audio software ??

dont do that !!

can this happen from a previous drive by download ???
who runs internet without a firewall and antivirus and registry guard ??

what is the mechanism that audacity could be exploited ?
i understand how pdf and jpeg and some others could occur.

Post by **Gale Andrews** » Wed Jul 28, 2010 9:14 pm

whomper wrote:who runs internet at the same time as audio software ??

Just about anyone with a broadband internet connection controlled by a router (i.e no explicit dial up by the user). It's quite a few steps to disconnect that.

Gale

whomper · Post by **whomper** » Wed Jul 28, 2010 9:18 pm

score one for dial up users

i was taught to disconnect from broadband when not needed to avoid such problems

hkennedy · Post by **hkennedy** » Thu Jul 29, 2010 10:47 am

The Vulnerabilities were identified in a security scan of the last version. I wanted to know if they exist in the beta version. Thank you for the info.

Post by **steve** » Thu Jul 29, 2010 12:56 pm

Audacity 1.3.12 is the "last" version.
Which version have you done a "security scan" with, and how did you do the security scan?
You can find the Audacity version number by looking in the Audacity "Help menu > About Audacity".

Audacity Forum

3.12 Vulnerabilities

3.12 Vulnerabilities

Re: 3.12 Vulnerabilities

Re: 3.12 Vulnerabilities

Re: 3.12 Vulnerabilities

Re: 3.12 Vulnerabilities

Re: 3.12 Vulnerabilities

Re: 3.12 Vulnerabilities